I have many 1.2.2 PFSense gateways running. Somehow I have managed to mangle all but one of them today for certain types of outbound traffic. HTTP/DNS/POP/SMTP are all fine and lightning fast. SSH, Secure POP, Secure SMTP, some gaming, are all dead from the LAN out. I have advanced outbound nat enabled with the default outbound nat rule. I read this: http://doc.pfsense.org/index.php/Static_Port and it seems to fit the bill, but checking static port didnt help. Up until I rebooted these boxes, it was random, now these types of services are dead all the time. If it helps narrow it down, a few of these boxes have an OPT interface for a segmented network and coming through the OPT interfaces, everything is flawless outbound. I plopped up a brand new box with LAN/WAN/OPT and 1.2.2. Same thing. What am I missing? We ran 1.2.1 forever it seems with no issues and when I added a few new boxes, I decided to upgrade all of them to 1.2.2 to keep things standardized.
Another complaint I had from a static hosted customer was that all of the traffic he is getting at his router from one of these PFSense boxes, shows the PFSense box LAN ip as the source ip of all traffic instead of the true public source ip. Thats even weirder but happens on only one of these gateways. I have 1 LAN rule to allow * LAN traffic out. No WAN rules. No port forwards. No 1:1 Nats. Ive tried switching back to automic outbound NAT. Nadda.I have 1 virtual LAN ip that is CARP for users gateway although I have not enabled the CARP service nor configured it yet. I have one small clump of hair left. Any help would be much appreciated. Tim
